acegi {

    /**
     * Authentication Configuration
     */
    loginController = "LoginController"
    authenticationAction = "authenticate"
    ajaxAuthenticationAction = "ajaxAuthenticate"
    authenticationFailureAction = "authenticationFailed"
    authenticationFailureActionParams = "login_error=1"
    authenticationRedirectDefaultUrl = "/"
    /** anonymousUserKey can be an reasonable value */
    anonymousUserKey = "an-anonymous-user-key"
    anonymousUserAttribute = "anonymousUser,ROLE_ANONYMOUS"
    forceHttpsForAuthentication = "true"
    ajaxHeader = "X-Requested-With"
    
    /**
     * See http://java.sun.com/j2se/1.4.2/docs/guide/security/CryptoSpec.html#AppA
     * for valid choices
     */
    passwordHashEncodingAlgorithm = "SHA"
    encodePasswordHashInBase64 = false

    userDetailsDomainClass = "UserDetails"
    userDetailsUsernameField = "username"
    userDetailsPasswordHashField = "passwordHash"
    userDetailsEnabledField = "enabled"
    /** The field in userDetailsDomainClass that contains the set of Role objects */
    userDetailsRolesField = "roles"
    /** The field in the Role class that contains the Role name */
    roleNameField = "name"
    /** NOTE: the actual Role class does not need to be specified */

    /**
     * Authorization Configuration
     */
    useRequestMapDomainClass = false
    /** Used if useRequestMapDomainClass = true */
    /**
    requestMapClass = "RequestMap"
    requestMapPathField = "path"
    requestMapKeywordsField = "keywords"
    */
    /** Used if useRequestMapDomainClass = false */
    requestMapDescriptor = """
    	CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
    	PATTERN_TYPE_APACHE_ANT
    	/login/**=IS_AUTHENTICATED_ANONYMOUSLY
    	/admin/**=ROLE_USER
    	/book/test/**=IS_AUTHENTICATED_FULLY
    	/book/**=ROLE_SUPERVISOR
    	/**=IS_AUTHENTICATED_ANONYMOUSLY
    	"""

    /**
     *  Set [ajaxA|a]ccessDeniedAction to "" or "null" if you want to return error code 403 (FORBIDDEN).
     */
    accessDeniedAction = "denied"
    ajaxAccessDeniedAction = "ajaxDenied"

    /**
     * Remember Me Services
     */
    rememberMeCookie = "grails_remember_me"
    /** rememberMeKey can be any reasonable value */
    rememberMeKey = "remember me forever"
    rememberMeAlways = false
    /** Seconds */
    rememberMeExpiration = 1209600 //14 days
    /**
     * The parameter required to signal that the page should look for the rememberMe
     * credentials
     */
    rememberMeParameter = "_acegi_security_remember_me"

    /** LoggerListener
      * ( add "log4j.logger.org.acegisecurity=info,stdout" to log4j.*.properties to see logs )
      */
    useLogger = false

    /** Use email notification during registration */
    useMail = false
    mailHost = "localhost"
    mailUsername = "user@localhost"
    mailPassword = "sungod"
    mailProtocol = "smtp"
    mailFrom = "user@localhost"


    /** Default role during for user registration */
    defaultRole = "ROLE_USER"
}

algorithmMethods {
    MD5 = "md5Hex"
    SHA = "shaHex"
    SHA1 = "shaHex"
    SHA256 = "sha256Hex"
    SHA384 = "sha384Hex"
    SHA512 = "sha512Hex"
}